-
Type:
Improvement
-
Status: Done
-
Priority:
Minor
-
Resolution: Won't Fix
-
Affects Version/s: 2.6.0, 2.4.6
-
Fix Version/s: Not applicable
-
Component/s: security
-
Labels:None
The dictionary password validator has a case-sensitive-validation switch: 'Indicates whether this password validator should treat password characters in a case-sensitive manner. A value of true indicates that the validator does not consider a capital letter to be the same as its lower-case counterpart. A value of false indicates that the validator ignores differences in capitalization when looking at the number of unique characters in the password.'
The attribute value password validator should have this, too, and it should be set to false by default.